Eclipse · Eclipse Jetty · CVE-2015-2080
**Name of the Vulnerable Software and Affected Versions**
Eclipse Jetty versions prior to 9.2.9.v20150224
**Description**
The exception handling code in Eclipse Jetty allows remote attackers to obtain sensitive information from process memory via illegal characters in an HTTP header. This issue is also known as JetLeak.
**Recommendations**
For Eclipse Jetty versions prior to 9.2.9.v20150224, update to version 9.2.9.v20150224 or later to resolve the issue.